T63-2021 BIOVIA Pipeline Pilot: TLS support level

Background

Pipeline Pilot Server supports secure connectivity using SSL over HTTPS to ensure that sensitive data is communicated securely between the server and client applications. OpenSSL enables support for TLS and SSL protocols.

Up to version 2017, included, we could support up to TLS 1.1, which is no longer recommended.

Solution

Starting 2017R2 we include support for TLS 1.2.

With the release of 2020 we provide support for TLS 1.3

Enclose list of releases and the OpenSSL build used

Release

User Story

Description

2021

PPC-9636

OpenSSL has been updated to version 1.1.1g

2020

PPC-8202

Upgraded OpenSSL to version 1.1.1c. This enables support for TLS 1.3 for both incoming connections to the Pipeline Pilot Server and outgoing connections from components to remote services.

2019

PPC-8832

Updated OpenSSL to the latest available 1.0.2 version. (1.0.2p)

2018

PPC-8246

Updated to OpenSSL version 1.0.2l

2017R2

PPC-5814

OpenSSL has been upgraded from 0.9.8 to 1.0.2j. As a result, all use of https within the server including incoming https connections to the Pipeline Pilot Apache server, outgoing HTTPS connections from the HTTP Connector and File Readers, and SSL connections from within Perl components are now capable of supporting TLS 1.0, 1.1, 1.2 and the modern set of SSL encryption ciphers. SSL v3 has been completely removed from support as have many older weak ciphers.

2017

PPC-9636

No changes

2016

PPC-7257

Updated the OpenSSL version included with the server and client to 0.9.8zg

We encourage customers to perform regular upgrades to comply with security standards.

How to contact BIOVIA Support

If you have any questions, please contact BIOVIA Support.

Same information published as  TechNote 

https://www.3ds.com/support/news/single/t63-2021-biovia-pipeline-pilot-tls-support-level/